[Freeipa-users] IPA wont start, all services fail
Simpson Lachlan
Lachlan.Simpson at petermac.org
Thu Jan 21 04:23:50 UTC 2016
> -----Original Message-----
> From: Simpson Lachlan
> I would like to test a few things, but I'm finding it hard to find good examples.
>
> How can I test that the one way trust relationship between the FreeIPA server
> and the AD DC is still in effect? (FreeIPA trusts AD, AD does not trust
> FreeIIPA).
> I presume there is an ldapsearch or sssd command that should connect directly
> to
> the AD server?
I should have asked for what I wanted, because of course I found the solution to what
I *did* ask almost immediately.
Real question: If I get the SID for the "SMB Default Group", is it just a matter of editing
the ldap directory via ldapmodify?
No, because that's again not the issue.
The samba error I get is
pdb backend ipasam:ldapi://%2fvar%2frun%2fslapd-UNIX-CO-ORG-AU.socket did not correctly init (error was NT_STATUS_INVALID_PARAMETER)
pbdedit fails on the same problem.
How can I set the SID of the default group manually - by which I mean, using a command line tool to manipulate text (rather than a shell script or ipa-adtrust).
Cheers
L.
This email (including any attachments or links) may contain
confidential and/or legally privileged information and is
intended only to be read or used by the addressee. If you
are not the intended addressee, any use, distribution,
disclosure or copying of this email is strictly
prohibited.
Confidentiality and legal privilege attached to this email
(including any attachments) are not waived or lost by
reason of its mistaken delivery to you.
If you have received this email in error, please delete it
and notify us immediately by telephone or email. Peter
MacCallum Cancer Centre provides no guarantee that this
transmission is free of virus or that it has not been
intercepted or altered and will not be liable for any delay
in its receipt.
More information about the Freeipa-users
mailing list